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DETAILED ACTION 

In view of tlie Appeal Brief filed on 6/2/2009, PROSECUTION IS HEREBY 
REOPENED. A new ground of rejection set forth below. 

To avoid abandonment of the application, appellant must exercise one of 
the following two options: 

(1 ) file a reply under 37 CFR 1.111 (if this Office action is non-final) or a 
reply under 37 CFR 1 .1 13 (if this Office action is final); or, 

(2) initiate a new appeal by filing a notice of appeal under 37 CFR 41 .31 
followed by an appeal brief under 37 CFR 41 .37. The previously paid notice of 
appeal fee and appeal brief fee can be applied to the new appeal. If, however, 
the appeal fees set forth in 37 CFR 41 .20 have been increased since they were 
previously paid, then appellant must pay the difference between the increased 
fees and the amount previously paid. 

A Supervisory Patent Examiner (SPE) has approved of reopening 
prosecution by signing below: Claims 1-21 are pending. 

Claim Rejections - 35 USC § 103 

The following is a quotation of 35 U.S.C. 103(a) which forms the basis for 
all obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described 
as set forth in section 1 02 of this title, if the differences between the subject matter sought to 
be patented and the phor art are such that the subject matter as a whole would have been 
obvious at the time the invention was made to a person having ordinary skill in the art to which 
said subject matter pertains. Patentability shall not be negatived by the manner in which the 
invention was made. 
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This application currently names joint inventors. In considering 
patentability of the claims under 35 U.S.C. 103(a), the examiner presumes that 
the subject matter of the various claims was commonly owned at the time any 
inventions covered therein were made absent any evidence to the contrary. 
Applicant is advised of the obligation under 37 CFR 1 .56 to point out the inventor 
and invention dates of each claim that was not commonly owned at the time a 
later invention was made in order for the examiner to consider the applicability of 
35 U.S.C. 103(c) and potential 35 U.S.C. 102(e), (f) or (g) prior art under 35 
U.S.C. 103(a). 

1 . Claims 1-4, and 12-16 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Challener et al (US Patent Publication No. 2002/0059286 and 
Challener hereinafter) in view of Foster et al. (US Patent Publication No. 
2003/0198350 and Foster hereinafter). 

2. As to clams 1 and 13, Challener teaches an apparatus for consolidating 
key updates provided in records that each comprise an encrypted key (e.g., user 
key) corresponding to a node of a key hierarchy and encrypted (i.e., wrapped) 
using a key (e.g., platform key) which is a descendant of that node (i.e., 
...teaches user key 103 is a migratable private 2048 RSA key wrapped by the 
platform key 102 and used as a root for all of a user's migratable keys [par. 21]), 
hierarchy-node information for both the encrypted and encrypting keys [fig. 1], 
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the apparatus comprising a communications interface (e.g., bus) for 
receiving said records (912, fig. 9); 

Challener does not expressly teach: 

and l<ey-version information for at least the encrypted key; 

and a manager for maintaining, on the basis of the received records, a key 
tree with nodes corresponding to nodes in said hierarchy, the manager being 
arranged to store In association with each tree node, for each encrypting key 
used in respect of the encrypted key associated with the node, the most up-to- 
date version of the encrypted key and its version information with any earlier 
versions being discarded. 

However at the time of applicant's original filing the feature of localizing key 
version information was well known and would have been an obvious 
modification of the teaching of Challener as disclosed by Foster. Forster 
discloses: 

key-version information for at least the encrypted key (to provide key- 
version information [par. 45]); 

and a manager for maintaining, on the basis of the received records (to 
provide a managing means for updating key data (e.g. record) [par. 66]), a key 
tree (e.g., sub-tree) with nodes corresponding to nodes in said hierarchy (to 
provide sub-tree corresponding to a hierarchy node [par. 9]), the manager being 
arranged to store in association with each tree node (to provide storing capability 
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of key data [par. 68]), for each encrypting key used in respect of the encrypted 
key associated with the node (to provide a encrypting key for a encrypted key 
[par. 71]), the most up-to-date version (e.g., updated device information) of the 
encrypted key and its version information with any earlier versions being 
discarded (to provide means to provide the most up-to-date key information (e.g., 
key version data) [par. 67 & 68]). 

Therefore, given Challener's key tree infrastructure, a person of ordinary skill in 
the art would have recognized the advantage of modifying Challener to provide a 
more robust re-keying means, with the well known feature of distributing and 
maintaining updated key information (e.g., key version) locally within a sub-tree 
group as disclosed by Foster, thereby lowering the time it would normally take to 
re-key Challener's tree infrastructure. 

3. As to claims 2 and 14, Challener teaches an apparatus where the 
manager is arranged to store each said most up-to-date version (e.g., new 
migratable signing key) of a said encrypted key by storing the record containing 
the latter with any previously-stored record that is thereby superseded being 
discarded, [par. 25] 

4. As to claim 3, Challener teaches a apparatus where the manager is 
arranged to store in association with each tree node [par. 27], 
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Challener does not expressly teach: 

along with the most up-to-date version of the corresponding encrypted key 
stored for each encrypting key used in respect of that encrypted key, version 
information for the encrypting key used to encrypt said most up-to-date version of 
the encrypted key, this version information being included in the record providing 
said most up-to-date version of the encrypted key. 

However at the time of applicant's original filing the feature of localizing key 
version information was well known and would have been an obvious 
modification of the teaching of Challener as disclosed by Foster. Forster 
discloses: 

along with the most up-to-date version (e.g., updated device information) 
of the corresponding encrypted key stored for each encrypting key used in 
respect of that encrypted key ,version information (e.g., updated device 
information) for the encrypting key used to encrypt said most up-to-date version 
(e.g., updated device information) of the encrypted key, this version information 
being included in the record providing said most up-to-date version of the 
encrypted key (to provide means to provide the most up-to-date key information 
(e.g., key version data) [par. 67 & 68]). 

Therefore, given Challener's key tree infrastructure, a person of ordinary skill in 
the art would have recognized the advantage of modifying Challener to provide a 
more robust re-keying means, with the well known feature of distributing and 
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maintaining updated key information (e.g., key version) locally within a sub-tree 
group as disclosed by Foster, thereby lowering the time it would normally take to 
re-key Challener's tree infrastructure. 

5. As to clams 4 and 16, Challener teaches an apparatus where the manager 
is arranged to replace the version of the encrypted key stored in association with 
a tree node for a particular encrypting key (i.e., ...teaches updating the local key 
storage means [[par. 27), 

Challener does not expressly teach: 

with any subsequently received later version of that key provided the latter 
has been encrypted with a version of the encrypting key that is the same or later 
than the version used for encrypting the existing stored encrypted key. 

However at the time of applicant's original filing the feature of re-encryption 
utilizing new key version information was well known and would have been an 
obvious modification of the teaching of Challener as disclosed by Foster. Forster 
discloses: 

with any subsequently received later version of that key provided the latter 
has been encrypted with a version of the encrypting key that is the same or later 
than the version used for encrypting the existing stored encrypted key. (to provide 
re-encrypting capability utilizing subsequent generated encrypting key data [par. 
81]. 
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Therefore, given Cliallener's l<ey storage means, a person of ordinary sl<ill in tlie 
art would liave recognized tine advantage of modifying Clnallener witli tlie well 
known feature of re-encryption utilizing subsequent key versions as disclosed by 
Foster, thereby enhancing Challener's encryption capability. 

6. As to claims 8 and 20, Challener teaches an apparatus where the 
manager is arranged to maintain said tree only in respect of keys corresponding 
to the nodes of a predetermined sub-hierarchy of said hierarchy and keys for the 
path from the head of this sub-hierarchy that terminates at the root of the 
hierarchy [fig. 1] . 

2. As to clam 1 2, Challener teaches a system comprising: 

the apparatuses at each level of said hierarchical arrangement, other than 
said first level [fig. 1], each being arranged to maintain its said tree only in 
respect of keys corresponding to the nodes of a respective predetermined sub- 
hierarchy of said key hierarchy and keys for the path from the head of this sub- 
hierarchy that terminates at the root of the key hierarchy [fig. 5]. 

Challener does not expressly teach: 

multiple apparatuses and a key-hierarchy manager for managing said key 
hierarchy in dependence on the addition and/or removal of members to a group 
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and for outputting key update records reflecting changes made to tine key 
hierarchy; 

the apparatuses being configured in a multiple-level hierarchical 
arrangement comprising a first-level apparatus arranged to receive the records 
output by the key-hierarchy manager, and one or more lower levels of 
apparatuses each arranged to receive the key tree, or a subset of it, produced by 
a said apparatus at the next level up, the apparatuses at the lowest level of the 
hierarchical arrangement each being arranged to provide its key tree, or a 
subset of it, to a respective sub-group of members of said group; 

However at the time of applicant's original filing the feature of a key-hierarchy 
manager was well known and would have been an obvious modification of the 
teaching of Challener as disclosed by Foster. Forster discloses: 

multiple apparatuses and a key-hierarchy manager for managing said key 
hierarchy in dependence on the addition and/or removal (e.g. revoked) of 
members to a group and for outputting key update records reflecting changes 
made to the key hierarchy (to provide the capability for group participant removal 
[par. 59]); 

the apparatuses being configured in a multiple-level hierarchical 
arrangement comprising a first-level apparatus arranged to receive the records 
output by the key-hierarchy manager (to provide the capability to receive key 
update information (e.g., records) in a hierarchical key structure [par. 68]), and 
one or more lower levels of apparatuses each arranged to receive the key tree. 
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or a subset of it (to provide a sub-tree (e.g. subset) arrangement [fig. 6]), 
produced by a said apparatus at tlie next level up, the apparatuses at the lowest 
level of the hierarchical arrangement each being arranged to provide its key tree, 
or a subset of it, to a respective sub-group of members of said group (to provide 
a sub-tree (e.g. subset) arrangement [fig. 6]); 

Therefore, given Challener's root key hierarchy, a person of ordinary skill in the 
art would have recognized the advantage of modifying Challener with the well 
known feature of key management as disclosed by Foster, thereby enhancing 
Challener's root key hierarchy. 

3. As to clam 15, Challener teaches a method where in said sub-step the 
version information of the encrypting key used to encrypt said most up-to-date 
version of the encrypted key is stored with the latter [par. 27]. 

4. Claims 5-7, 9-1 1 , 1 7- 1 9 and 21 are rejected under 35 U .S.C. 1 03(a) as 
being unpatentable over Challener in view of Foster, as applied to claims 1 and 
13 above, and further in view of McDaniel et al. (US Patent Publication No. 
2003/0126464 and McDaniel hereinafter). 

5. As to claims 5-7, and 17-19, although the combination Challener in view 
of Foster illustrates features of applicant's invention, the combination does not 
disclose: 
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An apparatus further comprising a worl<ing-set generator for processing 
the key tree to generate a subset of the tree enabling, at least within a target 
failure rate, all clients associated with the key hierarchy to recover the current 
root key of the latter (claims 5 and 17). 

An apparatus where the working set generator comprises control means 
for receiving feedback on the current root-key recovery failure rate and for 
controlling the size of said subset to approach the actual failure rate to said target 
failure rate (claims 6 and 18). 

An apparatus according where the working set generator further 
comprises means for determining the likelihood of a tree node being required to 
enable recovery the current root key, these means being based on at least one of 
the age of the node, or of an encrypted key associated with it, and an estimate of 
the number of possible clients that will need the node (claims 7 and 19). 

However at the time of applicant's original filing the feature target failure analysis 
within a group key management environment was well known and would have 
been an obvious modification of the combined teachings of Challener and Foster 
as disclosed by McDaniel. McDaniel discloses: 
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An apparatus further comprising a worl^ing-set generator for processing 
the key tree to generate a subset of the tree enabling, at least within a target 
failure rate, all clients associated with the key hierarchy to recover the current 
root key of the latter (to provide the capability for a new participant event 
(representing a newly admitted member) may require the initiation of session 
rekeying, such that the creation of new process monitoring timers (for failure 
detection and recovery) [par. 101]). (claims 5 and 15) 

An apparatus where the working set generator comprises control means 
for receiving feedback on the current root-key recovery failure rate and for 
controlling the size of said subset to approach the actual failure rate to said target 
failure rate (to provide a mechanism feedback mechanism (e.g., detection) for 
failure analysis [par. 142]). (claims 6 and 18) 

An apparatus according where the working set generator further 
comprises means for determining the likelihood of a tree node being required to 
enable recovery the current root key, these means being based on at least one of 
the age of the node, or of an encrypted key associated with it, and an estimate of 
the number of possible clients that will 15 need the node (to provide failure 
detection to be supported through a timed heartbeat detection mechanism [par. 
249]). (claims 7 and 19) 
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Therefore, given the key management capability of Challener in view of Foster, a 
person of ordinary skill in the art would have recognized the advantage of 
modifying Challener in view Foster to provide a more robust key management 
means, with the well known feature of target failure analysis as disclosed by 
McDaniel, thereby enhancing the reliability of the re-key operation of Challener in 
view of Foster. 

6. As to claims 9 and 21 , although Challener discloses features of applicant's 
claimed invention. Challenger does not disclose: 

A system comprising apparatus, and a key-hierarchy manager for 
managing said key hierarchy in dependence on the addition and/or removal of 
members to a group, the key-hierarchy manager being arranged to output said 
records both to currently available members of said group and to said apparatus 
as notification of the changes made by the key-hierarchy manager to the key 
hierarchy, said apparatus being arranged to provide said key tree, or a subset of 
it, 

However at the time of applicant's original filing these features were well known 
and would have been an obvious modification of the teaching of Challener as 
disclosed by Foster. Forster discloses: 

A system comprising apparatus, and a key-hierarchy manager for 
managing said key hierarchy in dependence on the addition and/or removal (e.g. 
revoked) of members to a group (to provide the capability for group participant 
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removal [par. 59]), the key-hierarchy manager being arranged to output said 
records both to currently available members of said group and to said apparatus 
as notification of the changes made by the key-hierarchy manager to the key 
hierarchy (to provide the capability to transmit to group participants current 
member association [par. 66]), said apparatus being arranged to provide said key 
tree, or a subset of it (to provide key recover capability such that a subset (e.g., 
sub-tree) is generated with consolidated key information [par. 68]). 

Therefore, given Challener's key tree infrastructure, a person of ordinary skill in 
the art would have recognized the advantage of modifying Challener with the well 
known feature of key management as disclosed by Foster thereby enhancing the 
key data distribution within Challener's key tree infrastructure . 

The combination of Challener in view of Foster does expressly teach: 

to members of said group who subsequently become available as a 
consolidated notification of the changes made by the key-hierarchy manager to 
the key hierarchy whereby to enable these members to recover the current root 
key of the key hierarchy at least within a target failure margin. 

However at the time of applicant's original filing the feature target failure analysis 
within a group key management environment was well known and would have 
been an obvious modification of the combined teachings of Challener and Foster 
as disclosed by McDaniel. McDaniel discloses: 
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to members of said group who subsequently become available as a 
consolidated notification of the changes made by the key-hierarchy manager to 
the l<ey hierarchy whereby to enable these members to recover the current root 
key of the key hierarchy at least within a target failure margin (to provide the 
capability for a new participant event (representing a newly admitted member) 
may require the initiation of session rekeying, such that the creation of new 
process monitoring timers (for failure detection and recovery) [par. 101]). 

Therefore, given the key management capability of Challener in view of Foster, a 
person of ordinary skill in the art would have recognized the advantage of 
modifying Challener in view Foster to provide a more robust key management 
means, with the well known feature of target failure analysis as disclosed by 
McDaniel thereby enhancing the reliability of the re-key operation of Challener in 
view of Foster. 

7. As to claim 1 0, although Challener discloses features of applicant's 
claimed invention. Challenger does not disclose: 

A system comprising apparatus and a key-hierarchy manager for 
managing said key hierarchy in dependence on the addition and/or removal of 

members to a group, the key-hierarchy manager being arranged to output said 
records to said apparatus, said apparatus being arranged to provide said key 
tree, or a subset of it. 
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However at the time of applicant's original filing these features were well known 
and would have been an obvious modification of the teaching of Challener as 
disclosed by Foster. Forster discloses: 

A system comprising apparatus and a key-hierarchy manager for 
managing said key hierarchy in dependence on the addition and/or removal (e.g., 
revoked) of members to a group (to provide the capability for group participant 
removal [par. 59]), the key-hierarchy manager being arranged to output said 
records (e.g., key update information) to said apparatus (to provide key manager 
data (e.g. record) transmission capability [par. 45]), said apparatus being 
arranged to provide said key tree, or a subset of it (to provide key recover 
capability such that a subset (e.g., sub-tree) is generated with consolidated key 
information [par. 68]), 

Therefore, given Challener's key tree infrastructure, a person of ordinary skill in 
the art would have recognized the advantage of modifying Challener with the well 
known feature of key management as disclosed by Foster thereby enhancing the 
key data distribution within Challener's key tree infrastructure . 

The combination of Challener in view of Foster does expressly teach: 

to members of said group who subsequently become available as a 
consolidated notification of the changes made by the key-hierarchy manager to 
the key hierarchy whereby to enable these members to recover the current root 
key of the key hierarchy at least within a target failure margin. 
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However at the time of applicant's original filing the feature target failure analysis 
within a group key management environment was well known and would have 
been an obvious modification of the combined teaching of Challener and Foster 
as disclosed by McDaniel. McDaniel discloses: 

to members of said group who subsequently become available as a 
consolidated notification of the changes made by the key-hierarchy manager to 
the key hierarchy whereby to enable these members to recover the current root 
key of the key hierarchy at least within a target failure margin (to provide the 
capability for a new participant event (representing a newly admitted member) 
may require the initiation of session rekeying, such that the creation of new 
process monitoring timers (for failure detection and recovery) [par. 101]). 

Therefore, given the key management capability of Challener in view of Foster, a 
person of ordinary skill in the art would have recognized the advantage of 
modifying Challener in view Foster to provide a more robust key management 
means, with the well known feature of target failure analysis as disclosed by 
McDaniel thereby enhancing the reliability of the re-key operation of Challener in 
view of Foster. 

8. As to claim 1 1 , although Challener discloses features of applicant's 
claimed invention. Challenger does not disclose: 
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A system where the key-hierarchy manager and said apparatus form part 
of an anonymous group content distribution arrangement; the key tree, or a 
subset of it, being sent to group members in association with content encrypted 
with a key that is one of: the key-hierarchy root key, and - a key encrypted using 
the key-hierarchy root key and provided in encrypted form 15 along with the 
encrypted content, (claim 1 1 ) 

However at the time of applicant's original filing these features were well known 
and would have been an obvious modification of the teachings of Challener as 
disclosed by Foster. Forster discloses: 

A system where the key-hierarchy manager and said apparatus form part 
of an anonymous group content distribution arrangement; the key tree, or a 
subset of it (to provide sub-tree (e.g., sub-set) generation capability [par. 68]), 
being sent (e.g., transmission) to group members in association with content 
encrypted with a key that is one of: the key-hierarchy root key (to provide 
transmission of updated key data to associated group participants [par. 68]), and 
a key encrypted using the key-hierarchy root key and provided in encrypted form 
along with the encrypted content (to provide encrypted content and encrypted 
data [81]). (claim 11) 

Therefore, given Challener's key tree infrastructure, a person of ordinary skill in 
the art would have recognized the advantage of modifying Challener with the well 
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known feature of key management as disclosed by Foster tliereby enliancing tine 
key data distribution within Cliallener's key tree infrastructure. 

Prior Art Made of Record 

Tine prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 

a. Dinsmore (US Paten No. 7,043,024) 

Contact Information 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to BRYAN WRIGHT whose telephone number Is 
(571)270-3826. The examiner can normally be reached on 8:30 am - 5:30 pm 
Monday -Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, William Korzuch can be reached on (571) 272-7589. The 
fax phone number for the organization where this application or proceeding Is 
assigned is 571-273-8300. 
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